@@ -310,6 +310,46 @@ tcp_listen_options.exit_on_close = false",
310310 {verify,verify_peer},
311311 {fail_if_no_peer_cert,false}]}]}],
312312 []},
313+ {ssl_options_honor_cipher_order,
314+ "listeners.ssl.1 = 5671
315+ ssl_options.cacertfile = test/config_schema_SUITE_data/certs/cacert.pem
316+ ssl_options.certfile = test/config_schema_SUITE_data/certs/cert.pem
317+ ssl_options.keyfile = test/config_schema_SUITE_data/certs/key.pem
318+ ssl_options.depth = 2
319+ ssl_options.verify = verify_peer
320+ ssl_options.fail_if_no_peer_cert = false
321+ ssl_options.honor_cipher_order = true",
322+ [{rabbit,
323+ [{ssl_listeners,[5671]},
324+ {ssl_options,
325+ [{cacertfile,"test/config_schema_SUITE_data/certs/cacert.pem"},
326+ {certfile,"test/config_schema_SUITE_data/certs/cert.pem"},
327+ {keyfile,"test/config_schema_SUITE_data/certs/key.pem"},
328+ {depth,2},
329+ {verify,verify_peer},
330+ {fail_if_no_peer_cert, false},
331+ {honor_cipher_order, true}]}]}],
332+ []},
333+ {ssl_options_honor_ecc_order,
334+ "listeners.ssl.1 = 5671
335+ ssl_options.cacertfile = test/config_schema_SUITE_data/certs/cacert.pem
336+ ssl_options.certfile = test/config_schema_SUITE_data/certs/cert.pem
337+ ssl_options.keyfile = test/config_schema_SUITE_data/certs/key.pem
338+ ssl_options.depth = 2
339+ ssl_options.verify = verify_peer
340+ ssl_options.fail_if_no_peer_cert = false
341+ ssl_options.honor_ecc_order = true",
342+ [{rabbit,
343+ [{ssl_listeners,[5671]},
344+ {ssl_options,
345+ [{cacertfile,"test/config_schema_SUITE_data/certs/cacert.pem"},
346+ {certfile,"test/config_schema_SUITE_data/certs/cert.pem"},
347+ {keyfile,"test/config_schema_SUITE_data/certs/key.pem"},
348+ {depth,2},
349+ {verify,verify_peer},
350+ {fail_if_no_peer_cert, false},
351+ {honor_ecc_order, true}]}]}],
352+ []},
313353 {ssl_cert_login_from,
314354 "ssl_cert_login_from = common_name",
315355 [{rabbit,[{ssl_cert_login_from,common_name}]}],
0 commit comments